053c3ab1a19e5b944ca1a69cfafd8089eea13fac5ef07b62080f8e2ba7674ddf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

053c3ab1a19e5b944ca1a69cfafd8089eea13fac5ef07b62080f8e2ba7674ddf
Size

638KB
MD5

af07484641888ff7f8e02b0ff656a521
SHA1

0186b6b2c2c2f55fe753e65a5c67168f5c53828c
SHA256

053c3ab1a19e5b944ca1a69cfafd8089eea13fac5ef07b62080f8e2ba7674ddf
SHA512

96d2738115c49d10639704bef4fc40b1567d55bbb4036990b8857619c0e77e95779178b6e57278f47b8ddb0ad1ea9e6874fd449506e8b0bc860cd576fe40fb94
SSDEEP

12288:gZ+iKYCN1yIOSKTp97sit1O4g73/x5u42XtCmRzBgp4cxeWmU/XmVEvo:BiKH1yI/6H7ft1bg7n2XFgpW4XM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/Factura_43822_de_America's_Custom_Brokers_Inc_16396.pdf.exe

Files

053c3ab1a19e5b944ca1a69cfafd8089eea13fac5ef07b62080f8e2ba7674ddf
.zip
Factura_43822_de_America's_Custom_Brokers_Inc_16396.pdf.exe
.exe windows:4 windows x86 arch:x86

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

VzsL.pdb

Imports

mscoree

_CorExeMain

Sections

.text
Size: 682KB - Virtual size: 681KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ